QUESTION 23You need to recommend a Docker container build strategy that meets the following requirements– Minimizes image sues– Minimizes the security surface area of the final imageWhat should you include m the recommendation?

QUESTION 24Your company builds a multi tier web application.You use Azure DevOps and host the production application on Azure virtual machines.Your team prepares an Azure Resource Manager template of the virtual machine that you mil use to test new features.You need to create a staging environment in Azure that meets the following requirements:– Minimizes the cost of Azure hosting– Provisions the virtual machines automatically– Use* the custom Azure Resource Manager template to provision the virtual machinesWhat should you do?

A. In Azure DevOps, configure new tasks in the release pipeline to create and delete the virtual machines m Azure DevTest Labs.B. From Azure Cloud Shell, run Azure PowerShell commands to create and delete the new virtual machines in a staging resource group.C. In Azure DevOps, configure new tasks in the release pipeline to deploy to Azure Cloud Services.D. In Azure Cloud Shell, run Azure CLI commands to create and delete the new virtual machines in a staging resource group.

Answer: AExplanation:You can use the Azure DevTest Labs Tasks extension that’s installed in Azure DevOps to easily integrate your CI/CD build-and-release pipeline with Azure DevTest Labs. The extension installs three tasks:Create a VMCreate a custom image from a VMDelete a VMThe process makes it easy to, for example, quickly deploy a “golden image” for a specific test task and then delete it when the test is finished.References:https://docs.microsoft.com/en-us/azure/lab-services/devtest-lab-integrate-ci-cd-vsts

QUESTION 25You manage build pipelines and deployment pipelines by using Azure DevOps.Your company has a team of 500 developers. New members are added continual lo the team You need to automate me management of users and licenses whenever possibleWhich task must you perform manually?

QUESTION 26During a code review, you discover many quality issues. Many modules contain unused variables and empty catch Modes. You need to recommend a solution to improve the quality o’ the code. What should you recommend?

A. In a Gradle build task, select Run Checkstyle.B. In an Xcode build task, select Use xcpretty from AdvancedC. In a Grunt build task, select Enabled from Control Options.D. In a Maven build task, select Run PMD.

Answer: DExplanation:PMD is a source code analyzer. It finds common programming flaws like unused variables, empty catch blocks, unnecessary object creation, and so forth.There is an Apache Maven PMD Plugin which allows you to automatically run the PMD code analysis tool on your project’s source code and generate a site report with its results.References:https://pmd.github.io/

QUESTION 27Your company plans to use an agile approach to software developmentYou need to recommend an application to provide communication between members of the development team who work in locations around the world. The application must meet the following requirements:– Provide the ability to isolate the members of efferent project teams into separate communication channels and to keep a history of the chats within those channels.– Be available on Windows 10, Mac OS, iOS, and Android operating systems.– Provide the ability to add external contractors and suppliers to projects.– Integrate directly with Azure DevOps.What should you recommend?

A. OctopusB. BambooC. Microsoft ProjectD. Slack

Answer: DExplanation: Slack is a popular team collaboration service that helps teams be more productive by keeping all communications in one place and easily searchable from virtually anywhere. All your messages, your files, and everything from Twitter, Dropbox, Google Docs, Azure DevOps, and more all together. Slack also has fully native apps for iOS and Android to give you the full functionality of Slack wherever you go.Integrated with Azure DevOpsThis integration keeps your team informed of activity happening in its Azure DevOps projects. With this integration, code check-ins, pull requests, work item updates, and build events show up directly in your team’s Slack channel.Note: Microsoft Teams would also be a correct answer, but it is not an option here.References:https://marketplace.visualstudio.com/items?itemName=ms-vsts.vss-services-slack

QUESTION 28Your company uses Azure DevOps for the build pipelines and deployment pipelines of Java based projects. You need to recommend a strategy for managing technical debt.Which two actions should you include in the recommendation? Each correct answer presents part of the solutionNOTE: Each correct selection is worth one point.

QUESTION 29Your company deploys applications m Docket containers.You want to detect known exploits in the Docket images used to provision the Docker containers.You need to integrate image scanning into the application lifecycle. The solution must expose the exploits as early as possible during the application lifecycle.What should you configure?

A. a task executed in the continuous deployment pipeline and a scheduled task against a running production container.B. a task executed in the continuous integration pipeline and a scheduled task that analyzes the production container.C. a task executed in the continuous integration pipeline and a scheduled task that analyzes the image registryD. manual tasks performed during the planning phase and the deployment phase

QUESTION 30You are developing a multi-tier application. The application will use Azure App Service web apps as the front end and an Azure SQL database as the back end. The application will use Azure functions to write some data to Azure Storage.You need to send the Azure DevOps team an email message when the front end fails to return a status code of 200.Which feature should you use?

Answer: DExplanation:Application Map helps you spot performance bottlenecks or failure hotspots across all components of your distributed application. Each node on the map represents an application component or its dependencies; and has health KPI and alerts status.References:https://docs.microsoft.com/en-us/azure/azure-monitor/app/app-map

QUESTION 31Your company has a project in Azure DevOps for a new web application.The company uses Service Now for change management.You need to ensure that a change request is processed before any components can be deployed to the production environment.What are two ways to integrate into the Azure DevOps release pipeline? Each correct answer presents a complete solution.NOTE: Each correct selection is worth one point.

A. Define a deployment control that invokes the Service Now SOAP API.B. Define a post deployment gate after the deployment to the QA stage.C. Define a deployment control that invokes the ServiceNow REST API.D. Define a pre deployment gate before the deployment to the Prod stage.

Answer: BDExplanation:An example of a release pipeline that can be modeled through a release pipeline in shown below:

In this example, a release of a website is created by collecting specific versions of two builds (artifacts), each from a different build pipeline. The release is first deployed to a Dev stage and then forked to two QA stages in parallel. If the deployment succeeds in both the QA stages, the release is deployed to Prod ring 1 and then to Prod ring 2. Each production ring represents multiple instances of the same website deployed at various locations around the globe.References:https://docs.microsoft.com/en-us/azure/devops/pipelines/release

QUESTION 32Your company has an on-premises Bitbucket Server that is used for Git-based source control. The server is protected by a firewall that blocks inbound Internet traffic.You plan to use Azure DevOps to manage the build and release processesWhich two components are required to integrate Azure DevOps and Bitbucket?Each correct answer presents part of the solution.NOTE: Each correct selection is worth one port.

A. an External Git service connectionB. a Microsoft hosted agentC. service hooksD. a self-hosted agentE. a deployment M group

Answer: ADExplanation:When a pipeline uses a remote, 3rd-party repository host such as Bitbucket Cloud, the repository is configured with webhooks that notify Azure Pipelines Server or TFS when code has changed and a build should be triggered. Since on-premises installations are normally protected behind a firewall, 3rd-party webhooks are unable to reach the on-premises server. As a workaround, you can use the External Git repository type which uses polling instead of webhooks to trigger a build when code has changed.References:https://docs.microsoft.com/en-us/azure/devops/pipelines/repos/pipeline-options-for

QUESTION 33You have a brand policy in a project in Azure DevOps. The policy requires that code always builds successfully.You need to ensure that a specific user can always merge change to the master branch, even if the code fails to compile. The solution must use the principle of least privilege.What should you do?

A. From the Security setting of the repository, modify the access control tor the user.B. From the Security settings of the branch, modify the access control for the user.C. Add the user to the Build Administrators group,D. Add the user to the Project Administrators group

Answer: BExplanation:In some cases, you need to bypass policy requirements so you can push changes to the branch directly or complete a pull request even if branch policies are not satisfied. For these situations, grant the desired permission from the previous list to a user or group. You can scope this permission to an entire project, a repo, or a single branch. Manage this permission along the with other Git permissions.References:https://docs.microsoft.com/en-us/azure/devops/repos/git/branch-policies